+ Post New Thread
Results 1 to 4 of 4
*nix Thread, File Permissions Help in Technical; This could go under web development or *nix, so I chose *nix. Can anyone give me a rough overview as ...
  1. #1

    Join Date
    May 2006
    Posts
    1,319
    Thank Post
    101
    Thanked 25 Times in 18 Posts
    Rep Power
    26

    File Permissions Help

    This could go under web development or *nix, so I chose *nix.

    Can anyone give me a rough overview as to how linux file permissions work? I tried searching the net but there is nothing basically explaining the security risks of file permissions on the internet.

    Most of the files on my joomla installation are by default set to 644. Most folders (and a few files) are set to 755 by default. Yet there are upload folders (for uploading files from the joomla frontend) set to 777. Is this dangerous? Do they need to be set up 777?

    I've had a website hacked before due to dodgy permissions and I am determined it will not happen again.

    Cheers

  2. #2

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,850
    Thank Post
    110
    Thanked 598 Times in 514 Posts
    Blog Entries
    1
    Rep Power
    227

    Re: File Permissions Help


  3. #3

    Join Date
    May 2006
    Posts
    1,319
    Thank Post
    101
    Thanked 25 Times in 18 Posts
    Rep Power
    26

    Re: File Permissions Help

    Okay... so basically anything with world write permissions is dangerous? I don't really understand that. Even if a file/folder has world write permissions, how would someone actually edit said file/folder without any passwords? I've seen it done before, but how do they do it? Is there a flaw in the coding which allows them to do it?

  4. #4

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,850
    Thank Post
    110
    Thanked 598 Times in 514 Posts
    Blog Entries
    1
    Rep Power
    227

    Re: File Permissions Help

    They would have to break in via a network facing service of some description. This, for example, could be brute forcing username/password combinations on your SSH server or exploiting a badly written PHP site.



SHARE:
+ Post New Thread

Similar Threads

  1. Student Folder File permissions
    By CM786 in forum Wireless Networks
    Replies: 4
    Last Post: 27th September 2007, 10:28 AM
  2. Windows File Permissions
    By stitch in forum Windows
    Replies: 3
    Last Post: 22nd June 2007, 11:54 AM
  3. Changing folder/file permissions on website
    By SimpleSi in forum Web Development
    Replies: 1
    Last Post: 7th April 2007, 04:55 PM
  4. Advanced file permissions in XP Home
    By crc-ict in forum Windows
    Replies: 2
    Last Post: 7th December 2006, 09:29 PM
  5. File permissions
    By Face-Man in forum Windows
    Replies: 9
    Last Post: 28th April 2006, 01:14 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •